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REMARKS 

Initially, Applicant expresses appreciation to the Examiner for the courtesies extended 
during the in-person interview of March 19, 2008. Applicant notes that the amendments and 
remarks contained in this paper are consistent with those previously presented to the Examiner. 
Accordingly, entry of this amendment and reconsideration of the pending claims is respectfully 
requested. 

By this paper, claims 24 and 34 have been amended, claim 36 has been added, and no 
claims have been canceled, such that claim 24-32, 34 & 36 remain pending, of which claims 24 
and 34 are the only independent claims at issue. 1 

The Office Action, mailed January 15, 2008, considered and rejected claims 24-32 and 
34. Claims 24, 25, 27-32, and 34 were rejected under 35 U.S.C. § 103(a) as being unpatentable 
over Barnett (U.S. Patent No. 6,772,157), hereinafter Barnett, in view of Maier (U.S. Patent No. 
5,625,815), hereinafter Maier. Claim 26 was rejected under 35 U.S.C. § 103(a) as being 
unpatentable over Barnett in view of Maier, further in view of Anglin (U.S. Publ. No. 
2004/0199521), hereinafter Anglin. 2 

The pending claims are directed to embodiments for delegating administrative rights in a 
zone based security system. Claim 24, for example, recites a method in a computer system 
wherein the computer system includes items stored in at least one volume, the volume being 
divided into at least one non-overlapping security zone, a security zone being defined as a 
grouping of items having common security rules. The method identifies first items for which 
common security rules are to be enforced and other items for which common security rules are to 
be maintained independent from the common security rules of the identified first items residing 
in a main non-overlapping security zone within a volume comprising a plurality of non- 
overlapping security zones. The main security zone is split into a first non-overlapping security 
zone of items having common security rules and a remaining non-overlapping main security 
having common security rules that are not dependent upon the common security rules of the first 
non-overlapping security zone such that the first non-overlapping security zone and the 

1 Support for the amendments to the claims is found throughout the Specification and more particularly on pages 8-10 of the 
Application as originally filed. 

2 Although the prior art status of the cited art is not being challenged at this time, Applicant reserves the right to challenge the 
prior art status of the cited art at any appropriate time, should it arise. Accordingly, any arguments and amendments made herein 
should not be construed as acquiescing to any prior art status of the cited art. 
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remaining non-overlapping main security zones do not overlap with any of the plurality of other 
non-overlapping security zones included in the volume. The one or more main principals retain 
administrative rights for the first non-overlapping security zone and the remaining main non- 
overlapping security zone with the first non-overlapping security zone including the first items 
and the remaining main non-overlapping security zone including only the other items from the 
main non-overlapping security zone not included in the first items. The splitting is restricted in 
such a way as to prevent overlapping between security zones and such that none of the first items 
and other items from the main non-overlapping security zone are shared when the main non- 
overlapping security zone is split. The security zones thereby have a dynamic configurable 
granularity of items having common security rules. One or more first principals are then 
specified that also have administrative rights to the first non-overlapping security zone 
containing the first items. 

The remaining independent claim, claim 34, is a computer program product that contains 
elements generally corresponding to those in indpendent claim 24 described above. 
Accordingly, the discussion related to claim 24 is applicable to independent claim 34 as well. 

As discussed in the interview, the Office Action cites Bamett as teaching the delegation 
of administrative rights to sub-administrators in a method corresponding to claim 24. In Barnett, 
an administration can delegate authority over a sub-domain of users to another administrator. 
Notably, however, because Barnett contains no teachings regarding non-overlapping zones, 
Maier is cited as teaching non-overlapping partitions in a database. 

As presented during the in-person interview, Applicant respectfully submits that the 
combination of Barnett and Maier nevertheless fails to teach, suggest or reasonably support all of 
the elements of the current claims. For instance, Barnett and Maier fail to teach, suggest or 
support that the zones are based on items having common security rules. For at least this reason, 
Applicant respectfully submits that the claims are allowable over the cited art. 

The presently amended claims recite that the security zones are based on the items 
contained within the security zone having common security rules. By having a zone of 
customizable granularity, controlling access to the items is simplified. For example, when a 
principal attempts to access an item, only the security rules for the zone the item resides in need 
to be checked to determine if access is possible. This can be contrasted with the cited art of 
Barnett, where if a principal attempts to access a sub-domain, security rules associated with the 
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item in the sub-domain would need to be accessed because the presence of the item in the 
domain is no guarantee that the item has the same security rules as the domain. For instance, the 
item may have other principals that can access the item, but not other items in the domain. The 
presently claimed invention, however, enforces that the item will have the same security rules as 
the zone in which it resides. 

As also discussed in the interview, Maier fails to compensate for the deficiencies of 
Barnett because the partitions described in Barnett are not related to security zones. While the 
partitions may be non-overlapping, the zones are not configured based on the items having 
common security rules, as presently claimed. Furthermore, the items in each of the partitions 
described in Maier are not required to have the same security rules as the partition, unlike items 
residing in the presently claimed zones. For instance, if a search were to be performed in Maier 
for database items accessible to a principal, the security rules of every item in the partition would 
need to be checked to determine if it is accessible to the principal. In the present invention 
however, once it is determined that the principal has access to a zone, all of the items in the zone 
can be accessed without further access of security rules. 

As clarification to the matters discussed in the interview, one way in which a security 
zone varies from traditional security rules in that all items contained in a zone are required to 
have the same security rules. For example, while a directory may have security rules associated 
with the directory, each individual file underneath the directory has associated permissions that 
may differ from the parent directory. Therefore, even if access is allowed to a directory, the files 
in the directory may still be inaccessible depending on the individual permissions of the file. In 
the present invention, if the directory were in a security zone, once the security rules associate 
with the directory allow access to the zone, all items would be accessible because they 
necessarily have the same rights as the security zone. 

In view of the foregoing, Applicant respectfully submits that the other rejections to the 
claims are now moot and do not, therefore, need to be addressed individually at this time. It will 
be appreciated, however, that this should not be construed as Applicant acquiescing to any of the 
purported teachings or assertions made in the last action regarding the cited art or the pending 
application, including any official notice. Instead, Applicant reserves the right to challenge any 
of the purported teachings or assertions made in the last action at any appropriate time in the 
future, should the need arise. Furthermore, to the extent that the Examiner has relied on any 
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Official Notice, explicitly or implicitly, Applicant specifically requests that the Examiner 
provide references supporting the teachings officially noticed, as well as the required motivation 
or suggestion to combine the relied upon notice with the other art of record. 

In the event that the Examiner finds remaining impediment to a prompt allowance of this 
application that may be clarified through a telephone interview, the Examiner is requested to 
contact the undersigned attorney at (801) 533-9800. 

Dated this 15 th day of April, 2008. 



Respectfully submitted. 




RICK D. NYDEGGER 
Registration No. 28,651 
COLBY C. NUTTALL 
Registration No. 58,146 
JOHN C. BACOCH 



Registration No. 59,890 
Attorneys for Applicant 
Customer No. 47973 
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